π΄ China-Based Threat Group Launches Widespread Malicious Campaign π΄
π Read
via "Dark Reading: ".
The motives behind the attacks remain unclear, but likely triggers include the ongoing trade war between the US and China and the unfolding COVID-19 pandemic.π Read
via "Dark Reading: ".
Darkreading
China-Based Threat Group Launches Widespread Malicious Campaign
The motives behind the attacks remain unclear, but likely triggers include the ongoing trade war between the US and China and the unfolding COVID-19 pandemic.
β Apple iOS 13.4 offers fixes for 30 vulnerabilities β
π Read
via "Naked Security".
Apple has just announced its latest something for everyone security and feature updates for iOS, iPadOS, macOS, watchOS, and tvOS.π Read
via "Naked Security".
Naked Security
Apple iOS 13.4 offers fixes for 30 vulnerabilities
Apple has just announced its latest something for everyone security and feature updates for iOS, iPadOS, macOS, watchOS, and tvOS.
β Responding to the New Normal: How to Prevent Added Risk in Your Business β
π Read
via "Threatpost".
With more employees than ever working remotely, there are numerous potential threats that organizations must be aware of.π Read
via "Threatpost".
Threat Post
Responding to the New Normal: How to Prevent Added Risk in Your Business
With more employees than ever working remotely, there are numerous potential threats that organizations must be aware of.
π How 4G and 5G networks are vulnerable to Denial-of-Service attacks π
π Read
via "Security on TechRepublic".
Existing 4G and early 5G networks use Diameter signaling protocol, which contains certain security holes that can lead to a range of attacks, says enterprise security provider Positive Technologies.π Read
via "Security on TechRepublic".
TechRepublic
How 4G and 5G networks are vulnerable to Denial-of-Service attacks
Existing 4G and early 5G networks use Diameter signaling protocol, which contains certain security holes that can lead to a range of attacks, says enterprise security provider Positive Technologies.
β Apple Safari now blocks all third-party cookies by default β
π Read
via "Naked Security".
Starting in 13.1, advertisers and analytics firms can't track us through browser cookies. Apple says this also kills login fingerprinting.π Read
via "Naked Security".
Naked Security
Apple Safari now blocks all third-party cookies by default
Starting in 13.1, advertisers and analytics firms canβt track us through browser cookies. Apple says this also kills login fingerprinting.
π΄ Introducing Zero-Trust Access π΄
π Read
via "Dark Reading: ".
It's too early to tell whether ZTA will be a VPN killer or not, but major players are ramping up products in this new class of security technology that focuses on the cloud.π Read
via "Dark Reading: ".
Dark Reading
Introducing Zero-Trust Access
It's too early to tell whether ZTA will be a VPN killer or not, but major players are ramping up products in this new class of security technology that focuses on the cloud.
π How hackers are using COVID-19 fears to push new scams and malware π
π Read
via "Security on TechRepublic".
Cybercriminals may be staying home, but they're not taking a break from phishing attempts and password hacking during the coronavirus outbreak.π Read
via "Security on TechRepublic".
TechRepublic
How hackers are using COVID-19 fears to push new scams and malware
Cybercriminals may be staying home, but they're not taking a break from phishing attempts and password hacking during the coronavirus outbreak.
ATENTIONβΌ New - CVE-2019-15796
π Read
via "National Vulnerability Database".
Python-apt doesn't check if hashes are signed in `Version.fetch_binary()` and `Version.fetch_source()` of apt/package.py or in `_fetch_archives()` of apt/cache.py in version 1.9.3ubuntu2 and earlier. This allows downloads from unsigned repositories which shouldn't be allowed and has been fixed in verisions 1.9.5, 1.9.0ubuntu1.2, 1.6.5ubuntu0.1, 1.1.0~beta1ubuntu0.16.04.7, 0.9.3.5ubuntu3+esm2, and 0.8.3ubuntu7.5.π Read
via "National Vulnerability Database".
β Hackers Hijack Routers to Spread Malware Via Coronavirus Apps β
π Read
via "Threatpost".
The router DNS hijacking attacks have targeted more than a thousand victims with the Oski info-stealing malware.π Read
via "Threatpost".
Threat Post
Hackers Hijack Routers to Spread Malware Via Coronavirus Apps
The router DNS hijacking attacks have targeted more than a thousand victims with the Oski info-stealing malware.
π nullscan 1.0.0 π
π Go!
via "Security Tool Files β Packet Storm".
nullscan is a modular framework designed to chain and automate security tests. It parses target definitions from the command line and runs corresponding modules and their nullscan-tools afterwards. It can also take hosts and start nmap first in order to perform a basic portscan and run the modules afterwards. Also, nullscan can parse a given nmap logfile for open tcp and udp ports and again run the modules afterwards. All results will be logged in specified directories with a clean structure and an HTML report can subsequently be generated.π Go!
via "Security Tool Files β Packet Storm".
Packetstormsecurity
nullscan 1.0.0 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
β Watch out! Scummy scammers target home deliveries β
π Read
via "Naked Security".
Anxiously waiting for a home delivery? Don't be tricked by a message that says there's a problem with your address...π Read
via "Naked Security".
Naked Security
Watch out! Scummy scammers target home deliveries
Anxiously waiting for a home delivery? Donβt be tricked by a message that says thereβs a problem with your addressβ¦
ATENTIONβΌ New - CVE-2019-15795
π Read
via "National Vulnerability Database".
python-apt only checks the MD5 sums of downloaded files in `Version.fetch_binary()` and `Version.fetch_source()` of apt/package.py in version 1.9.0ubuntu1 and earlier. This allows a man-in-the-middle attack which could potentially be used to install altered packages and has been fixed in versions 1.9.0ubuntu1.2, 1.6.5ubuntu0.1, 1.1.0~beta1ubuntu0.16.04.7, 0.9.3.5ubuntu3+esm2, and 0.8.3ubuntu7.5.π Read
via "National Vulnerability Database".
π΄ Technology Empowers Pandemic Response, But Privacy Worries Remain π΄
π Read
via "Dark Reading: ".
As technology companies and the medical community work to find ways to track and test for the virus, privacy might fall by the wayside.π Read
via "Dark Reading: ".
Dark Reading
Technology Empowers Pandemic Response, But Privacy Worries Remain
As technology companies and the medical community work to find ways to track and test for the virus, privacy might fall by the wayside.
β As Zoom Booms Incidents of βZoomBombingβ Become a Growing Nuisance β
π Read
via "Threatpost".
Numerous instances of online conferences being disrupted by pornographic images, hate speech or even threats can be mitigated using some platform tools.π Read
via "Threatpost".
Threat Post
As Zoom Booms, Incidents of βZoomBombingβ Become a Growing Nuisance
Numerous instances of online conferences being disrupted by pornographic images, hate speech or even threats can be mitigated using some platform tools.
π Hackers hijacking home routers to direct people to malicious coronavirus app π
π Read
via "Security on TechRepublic".
The attackers are changing DNS settings on Linksys routers to redirect users to a malicious website promising an informative COVID-19 app, says security provider BitDefender.π Read
via "Security on TechRepublic".
TechRepublic
Hackers hijacking home routers to direct people to malicious coronavirus app
The attackers are changing DNS settings on Linksys routers to redirect users to a malicious website promising an informative COVID-19 app, says security provider BitDefender.
β Emerging APT Mounts Mass iPhone Surveillance Campaign β
π Read
via "Threatpost".
The malware, the work of a new APT called TwoSail Junk, allows deep surveillance and total control over iOS devices.π Read
via "Threatpost".
Threat Post
Emerging APT Mounts Mass iPhone Surveillance Campaign
The malware, the work of a new APT called TwoSail Junk, allows deep surveillance and total control over iOS devices.
π Digital Guardian Named to JMP Securities 2020 Elite 80 List π
π Read
via "Subscriber Blog RSS Feed ".
JMP Securities has announced its annual Elite 80 list and we're pleased to report Digital Guardian is on it!π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
Digital Guardian Named to JMP Securities 2020 Elite 80 List
JMP Securities has announced its annual Elite 80 list and we're pleased to report Digital Guardian is on it!
β Tupperware Cyberattack Stores Away Customer Payment Cards β
π Read
via "Threatpost".
The food container company's main website had a card skimmer that scooped up online customers' payment card data.π Read
via "Threatpost".
Threat Post
Tupperware Cyberattack Stores Away Customer Payment Cards
The food container company's main website had a card skimmer that scooped up online customers' payment card data.
π How to safely work from home during the coronavirus outbreak π
π Read
via "Security on TechRepublic".
A malware expert offers telecommuters security tips about their work computer, remote access and network connections, phishing emails, and more.π Read
via "Security on TechRepublic".
TechRepublic
How to safely work from home during the coronavirus outbreak
A malware expert offers telecommuters security tips about their work computer, remote access and network connections, phishing emails, and more.